IRPAS/Tctrace

From aldeid
Jump to navigation Jump to search

Description

Tctrace comes as part of the IRPas suite of tools. Like itrace, it is kind of a traceroute but it uses TCP SYN packets to trace. This makes it possible for you to trace through firewalls if you know one TCP service that is allowed to pass from the outside. In addition, using TCP SYN makes the tool very fast.

Installation

$ sudo apt-get install irpas

Usage

Basic syntax

Install tctrace via the irpass package: 

$ tctrace [-vn] [-pX] [-mX] [-tX] [-DX] [-SX] -i<dev> -d<destination>

Then optionally create a symbolic link in your /pentest/ directory: 

$ mkdir -p /pentest/enumeration/tctrace/
$ ln -s /usr/sbin/tctrace /pentest/enumeration/tctrace/tctrace

Options

-v
verbose
-n
reverse lookup IPs
-pX
send X probes (default=3)
-mX
maximum TTL (default=30)
-tX
timeout X sec (default=3)
-DX
destination port (default=80)
-SX
source port (default=1064)
-i<dev>
use this device
-d<des>
trace to this destination

Example

Following example shows the traceroute obtained with tctrace for a given host. 

$ sudo tctrace -i wlan0 -d **************.fr
 1(1)   [192.168.100.1]
 2(1)   [192.168.1.1]
 3(1)   [10.125.127.9]
 4(1)   [10.125.127.10]
 5(1)   [193.253.81.122]
 6(1)   [81.253.131.114]
 7(1)   [193.252.161.242]
 8(1)   [193.251.126.157]
 9(1)   [193.252.162.98]
10(1)   [193.252.103.189]
11(1)   [193.252.227.18]
12(1)   [84.246.***.***] (reached; open)

As compared, here are the results for the same host, tested with itrace: 

$ sudo itrace -i wlan0 -d **************.fr
 1(1)   [192.168.100.1]
 2(1)   [192.168.1.1]
 3(1)   [10.125.127.9]
 4(1)   [10.125.127.10]
 5(1)   [193.253.81.122]
 6(1)   [81.253.129.78]
 7(1)   [193.252.161.242]
 8(1)   [193.251.126.157]
 9(1)   [193.252.160.186]
10(1)   [81.253.181.37]
11(1)   [193.252.227.18]
12(all) Timeout
13(all) Timeout
14(all) Timeout
15(all) Timeout
16(all) Timeout
17(all) Timeout
18(all) Timeout
19(all) Timeout
20(all) Timeout
21(all) Timeout
22(all) Timeout
23(all) Timeout
24(all) Timeout
25(all) Timeout
26(all) Timeout
27(all) Timeout
28(all) Timeout
29(all) Timeout
30(all) Timeout

Comments

Talk:IRPAS/Tctrace

Retrieved from "https://www.aldeid.com/w/index.php?title=IRPAS/Tctrace&oldid=22250"